Spyware keeps telling me I have spyware

[NeedHelp]

I get this window which keeps popping up that says, "Your system is infected ... Would you like IE Defender to clear your computer's performance now for free? " Additionally, when I do Google searches, I'm getting some links at the top of the page directing me to porn sites.

I've run through all the pre-posting exercises/scans. I've enclosed a Hijackthis log file.

Everything seemed to go fine except that when I ran Kaspersky's Online it said that I had some viruses and infected objects. I think the viruses my be in quarantine in a Symantec folder. The log file is enclosed.

I've run NIS 2008, but it does find any viruses.

[jholland1964]

Hello NeedHelp, We owe you a huge apology.
I have no idea how we missed your thread. Are you still requiring assistance? I have gone through your logs and I do see the IE Defender problem showing in the log.
The IE Defender infection is a Browser Helper Object installed in your Internet Explorer browser that hijacks searches you input into the Google and Yahoo search engines. These hijacked searches will state that you are infected and that you need to install the IE Defender rogue anti-spyware program. You will also receive popups that state you are infected when browsing the web. The reality is that all of these messages and alerts are fake and should be ignored.

To remove this from your system you will need to do the following;
These steps may appear to be long and daunting. They are, though, quite easy to do and consist of so many steps only because I have written them in an extremely detailed manner.

1. Print out these instructions as we will need to close every window that is open later in the fix.
2. Click on the Start Menu button.
3. Click on the Control Panel option.
4. Double-click on the Add or Remove Programs icon.
5. Find the entry for IE Defender and double-click on it to uninstall the program. Follow the prompts to uninstall the program, but do not allow it to reboot the computer if it asks.
6. When it has completed uninstalling you can close Add or Remove Programs and your Control Panel.
7. Next, please reboot your computer into Safe Mode by doing the following:
   1. Restart your computer
   2. After hearing your computer beep once during startup, but before the Windows icon appears, press F8.
   3. Instead of Windows loading as normal, a menu should appear
   4. Select the first option, to run Windows in Safe Mode.
   5. Login as a user with administrator privileges.
8. When your computer has started in safe mode, and you see the desktop, continue with the rest of the instructions.
9. Click on the Start button and then select the Run option.
10. In the Open: field type C:\Program Files\ and then press the OK button.
11. When the folder appears, if it says These files are hidden, click on the Show the contents of this folder option.
12. When the C:\Program Files\ folder opens, look through the list of folders and when you find the folder named IE Defender left-click on it once so it becomes highlighted.
13. Then hit the Delete button on your keyboard and when it asks if you are you want to delete the folder, click on the Yes button with your mouse.
14. When the folder is deleted, reboot your computer back to normal mode.
15. When your computer has rebooted and you are back at your desktop, download FixIED.reg to your desktop by right clicking on the following link and then selecting Save Link As or Save File as, depending on your browser.
    
    FixIED.reg Download Link
    Confirm that the file FixIED.reg now resides on your desktop as we will need it later.
16. Make sure all Windows are closed, including any Internet Explorer Windows, and that you are just looking at your desktop.
17. On your desktop find and double-click on the FixIED.reg file that you just downloaded. When it asks if you would like to merge the information, press the Yes button and then the OK button when it is done.
18. Delete the following files and folders (Do not be concerned if a folder does not exist):
    
    C:\Windows\System32\bDivX.dll
    C:\Windows\System32\bDivX.dll.bak
    C:\WINDOWS\system32\IR9V0_QCX.dll
    C:\WINDOWS\system32\IR9V0_QCX.dll.bak
    C:\Windows\System32\Video32.dll
    C:\Windows\System32\Video32.dll.bak
    C:\WINDOWS\system32\IntelVideo.dll
    C:\WINDOWS\system32\IntelVideo.dll.bak
    C:\WINDOWS\system32\IntelVideoDivX.dll
    C:\WINDOWS\system32\IntelVideoDivX.dll.bak
    C:\WINDOWS\system32\XunLeiBHO_Now.dll
    C:\WINDOWS\system32\XunLeiBHO_Now.dll.bak
    C:\Windows\System32\dx50codec.dll
    C:\Windows\System32\dx50codec.dll.bak
    C:\Windows\System32\a3gpcodec.dll
    C:\Windows\System32\a3gpcodec.dll.bak
    C:\WINDOWS\system32\aDivX.dll
    C:\WINDOWS\system32\aDivX.dll.bak
    C:\WINDOWS\system32\mp3avi.dll
    C:\WINDOWS\system32\mp3avi.dll.bak
    C:\Windows\System32\VideoMP3.dll
    C:\Windows\System32\VideoMP3.dll.bak
    
19. Reboot your computer for the last time in this guide.
20. Once the computer has rebooted we want to perform an online scan with Panda to find any possible inactive remnants from this infection: Panda Online
    1. Once you are on the Panda site click the Scan your PC button
    2. A new window will open...click the Check Now button
    3. Enter your Country
       
       
    4. Enter your State/Province
    5. Enter your e-mail address and click send
       
       
    6. Select either Home User or Company
       
       
    7. Click the big Scan Now button
    8. If it wants to install an ActiveX component allow it
    9. It will start downloading the files it requires for the scan (Note: It may take a few minutes)
    10. When download is complete, click on Local Disks to start the scan

1. When the online scan has been completed, let it remove what it finds, and then you can close Internet Explorer.

Your computer should now be free of the IE Defender software.

After you have followed the above instructions then please run one more Kaspersky scan and save the log and also a new HJT scan and save that log and post back here with both new logs.
Again you have my humblest apologies for missing your request. If you no longer need assistance can you let us know that also?
Judy

[jholland1964]

Hello NeedHelp, We owe you another huge apology I have been informed that the information for removing IE Defender is incomplete/incorrect.

Please go to this link to download a removal tool FixIEDefender

Follow all instructions given there. Sorry about this.
Judy